Lucene search
MitreCVE-2004-1337HistoryJan 06, 2005 - 5:00 a.m.
CVE-2004-1337
2005-01-0605:00:00
mitre
web.nvd.nist.gov
37
cve
linux kernel 2.6
posix capability
lsm
security module
local privilege escalation
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
5.5
Confidence
High
EPSS
0
Percentile
5.1%
The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 does not properly handle the credentials of a process that is launched before the module is loaded, which allows local users to gain privileges.
Affected configurations
Node
gnurealtime_linux_security_moduleMatch0.8.7
ORconectivalinuxMatch10.0
Node
ubuntuubuntu_linuxMatch4.1ia64
ORubuntuubuntu_linuxMatch4.1ppc
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gnu | realtime_linux_security_module | 0.8.7 | cpe:2.3:a:gnu:realtime_linux_security_module:0.8.7:*:*:*:*:*:*:* |
| conectiva | linux | 10.0 | cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:* |
| ubuntu | ubuntu_linux | 4.1 | cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:* |
| ubuntu | ubuntu_linux | 4.1 | cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:* |
Related
nvd
nvd
CVE-2004-1337
2004-12-23 05:00:00
ubuntucve
ubuntucve
CVE-2004-1337
2004-12-23 00:00:00
cvelist
cvelist
CVE-2004-1337
2005-01-06 05:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-57-1)
2022-08-26 00:00:00
nessus
nessus
Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-57-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : kernel (MDKSA-2005:110)
2005-07-01 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2005-01-09 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
5.5
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2004-1337